Infopulse Standards Compliance Manager

Any standard — any process
SCM: the smart way to get compliant!

Request a trial Watch the trailer
Jul 02, 2021Resolving Main Challenges of TISAX Implementation

Infopulse SCM

Infopulse Standards Compliance Manager (Infopulse SCM) enables organizations to assess their current level of security and fundamentally simplifies implementation and management of compliance-related processes according to specific security and privacy requirements.

Infopulse SCM right side

The tool is a viable and efficient solution for IT Security and Privacy Officers, System Administrators, CEOs and CIOs.
Infopulse Standards Compliance Manager covers the entire Information Security Management System (ISMS) of a company — from establishing and implementing a security plan to getting ready for certification.
Standards & Highlights

Standards

With governance, compliance and risk management all in one system, Infopulse SCM is a modular tool designed to manage all regulatory or company-specific standards, policies and procedures.

These standards give a clear overview of the most important tasks of security management as a system. It provides assistance in implementing these recommendations in the form of the IT-Grundschutz methodology. The IT-Grundschutz methodology provides organizations of different sizes and types with clear-cut instructions as for building an information security management system as well as with specific safeguards related to its aspects.
ISO 27001 is an international standard on information security management. The ISO 27001 provides normative specifications regarding the implementation, operation, and enhancement of a documented Information Security Management System (ISMS). It contains more than a hundred safeguards (controls) that are to be selected in consideration of the relevant risks.
ISO/IEC 27019:2017 provides guidance for process control systems used by the energy utility industry for controlling and monitoring the production or generation, transmission, storage, distribution of electric power, gas, oil, heat; and for the control of associated supporting processes.
ISO 22301 specifies security requirements related to Business Continuity and Disaster Recovery (BC/DR). It specifies requirements as to planning, establishing, implementing, maintaining and continually improving a BC/DR management system to protect against disruptive incidents. The requirements specified in ISO 22301 are generic and intended to be applicable to all organizations of any type, size and nature.
What does it take to stay combative on the market, maintain reputation and trust with business partners? Companies gain competitiveness, reliability, and trustworthiness through an effectively implemented quality management system (QMS) according to ISO 9001:2015.
More and more companies are becoming socially responsible by building a robust environmental management system. The effective EMS is implemented on the basis of ISO 14001 that can be applied to any industry as well as type and size of a business. To maintain a successful strategy, companies should consider precise risks that would impact their performance, design and develop a plan that balances the requirements of the standard and the business needs of the company.
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU). The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies.
Automotive SPICE, or ASPICE, is the industry-specific standard adopted in automobile production to guide software development of embedded automotive systems under the new market demands for safety, environment protection and economic efficiency. Based on ISO/IEC 33004, ISO/IEC 12207, and ISO/IEC 15504 modified with industry-specific details, it is elaborated in two dimensions: the process and the process capability level.
How can you assure your customers and partners that large volumes of sensitive data in the automotive industry are well protected against theft, loss, or manipulation? TISAX assessment is the answer. We provide a modern GRC solution for the TISAX assessment, which is flexible and accustomed to the individual requirements, protection needs, and best practices.
Infopulse SCM incorporates a number of other standards related to Information Security risk management polices (ISO 27005), IT service management (ISO 20000), efficiency and quality management (ISO 9001), Code of Conduct (ISO 27018), safety-related electronic and electrical systems (ISO 26262), etc.

Product Highlights

Personal compliance assistant - SCM bot "Helga"
Compliance Bot
Intuitive and easy-to-use UI
Import tool for individual and industry specific standards
Comprehensive adaptive reporting
Data import and integrations with asset management and CMDBs systems
Automated workflows and real time dashboards
Compliance Automated workflows
Easy document uploading and linking
On-premise or Cloud with various DB support
Testimonials

We were looking for a GRC solution with a focus on multiple standards, support, data integration, and collaboration. We required a tool able to align basic rules, e.g., information security and privacy with our industry-specific standards (ASPICE in our case).
It was quite a challenge, as large volumes of data in the company were handled manually - excel spreadsheets, word documents, and paper hard copies, all of that dispersed between several departments and people. Infopulse SCM enabled us to take back control, consolidate our data from different sources, track all the processes, and get an effective oversight mechanism for compliance and risk management.

Manfred L., Head of department

We were new to compliance and ISO 27001 implementation and had to go through the sophisticated certification process. Puzzled by the regulatory complexity, we wanted to find the best way for us to get started. Our project manager (aka security officer) had never worked with such compliance aspects and rules before. So we decided to get third-party assistance and signed up with Infopulse SCM. Their guided approach has played a vital role for us. They had all the detailed explanations for compliance check and risk analysis, including suggestions on how to handle it practically.

Thorsten R., Dipl.-Kfm.

Constantly evolving regulations such as BSI IT-Grundschutz and GDPR are a must for us as a healthcare organization. As critical infrastructure providers, we need reliable and customizable compliance software. It was easy to adapt Infopulse SCM to our processes. We can assess our clinic’s areas and processes in terms of security and data privacy. Besides, it enabled us to maintain a complete compliance record for the BSI IT-Grundschutz and GDPR (DSGVO) audit.

Dr. Eckehardt S. , Deputy Director

I had six months before the audit for ISO 27001. We have been in a hurry with the certification process, because of a customer request demanding our compliance for further collaboration. Infopulse SCM helped us to pass the inspection successfully. Together with my team, we uploaded all the existing data, consolidated it, analyzed existing gaps, and eliminated them. We have worked through all the processes, made amends to the specific items that the software has pointed out, and now we’re ISO 27001 certified. Thank you, SCM Team!”

Kristian B. , General Manager

The three-day workshop from expertree consulting GmbH helped us establish more detailed steps for implementing our information security and data protection management system in our company.
During the workshop, we were able to directly model our individual company processes, the unique requirements, and the current status in the holistic GRC solution, the Infopulse SCM.
The additional possibility of completing the seminar with a certification as a "BSI practitioner" from the Federal Office for Information Security gives us the secure feeling that we are well prepared for the future and found a suitable solution with the Infopulse SCM.

Vladyslav Prykhodko, Data Protection Officer, Jobnet AG

Membership

Alliance for Cyber Security
Federal Office for Information Security
Ready for KRITIS
Request a trial

Try

Benefit of free usage of the Infopulse SCM for 3 months to find out how the solution can optimize and streamline your compliance management. Please fill out this form, choose the standards and features you are most interested in. Our consultants will be glad to deliver a personalized webinar for you explaining step by step all the benefits of the SCM adoption.





    Professional

    Effective and easy-to-use IT security management system based on the latest standards and regulations — from planning and establishing the security concept to certification.